When using the service, various data and information is stored relating to you and your visitors. This provides access to functionality such as chat. The information collected is relating to the equipment you use to access our website or services, IP addresses, type of browser and operating system. Also images can be uploaded to our service. The images stay on our server for at least 1 year for Premium plan and for at least 3 months for free plan. The information collected can be used for statistical purposes by us to improve the security and promotion of our services, but we never give or sell this information to others.

We have to comply with judgments or legal requests for maintaining or providing information in accordance with local laws and demands from the government authorities. Any information provided by you or to you by using the services, shuld be maintain or possible given by us in a case of a such legitimate requests.

We take security seriously into account, and we follow the generally accepted standards for the protection and management of your personal information and data. Our servers are hosted in Amazon EC2 data centers in Dublin, Ireland and they have a high level of physical security. Furthermore, we use TLS connections between the users and our servers, so all data and chat texts are encrypted during transmission. TLS (Transport Layer Security) is a protocol that ensures privacy between communicating applications and their users on the Internet.

onWebChat will not use any data from the list of your visitors or any other information of your clients for any reason other than those intended for the functionality of the service. Your customer data will not be shared with anyone else or to any third party. onWebChat will not use data of your customers (eg. email address) to send emails or any other information. Sometimes, we might only communicate with you to inform you about important announcements or offers related to our services.

The management and protection of personal data of both service users and their website visitors, is subject to the terms of this agreement and the relevant provisions of European Law (Directives 95/46 / EC and 97/66 / EC). Any possible changes will be subject to this section.

onWebChat, at its discretion, may disable at any time the access to your account and may cancel it if it deems that you have violated any of the terms and conditions specified in this agreement.

As onWebChat evolves, this privacy policy is likely to evolve with it. We will not reduce your rights under this policy without your explicit consent. We will post any policy changes on this page and, if the changes are significant, we will provide a more prominent notice.


Cookies are small text files, that are placed on your computer by websites that you visit and which may then be sent back to the servers each time the browser requests a page from the server. Cookies are used to identify users as they navigate different pages on a website or when returning to the website. Cookies may store your preferences and your profile information. For example, cookies are used by onWebChat to store some chat options of your webvisitors like the sound option. Regarding our website and operator console cookies are used to save data like your language and your account's email. We don't have access and of course, we don't store any details relating to your payments like PayPal credentials or credit card details.

onWebChat website may use the following cookies on your browser when you visit our website:

PHPSESSID: used by PHP to keep track of sessions (session)
_ga , _gat , _gid: used by Google analytics to distinguish visitors
accept-cookies: set to true if we have visitor's contest to store cookies (2 years)
onwebchatf: store browser http_referer info (from where a visitor came) (10 days)
aff: if the visitor comes from an affiliator, stores the affiliator id (90 days)
onwebemail: used if selected "keep me sign in" - the email of the user (60 days)
onwebhash: used if selected "keep me sign in" - hash of encrypted password (60 days)
lang: used to remember the visitors' selected language (session)

For the functionality of live chat widget, the following cookies may be used. Also, the following cookies may be used by our users' websites (websites using onWebChat service), so please inform your visitors about that.

onwbchtexpress.sid : It's the identifier for your current onWebChat session (session)
io : keep session (session)
onwbchtclientid : It is a unique id so that onWebChat can identify visitors (1 year)
onwbchtsessionrandom : A random number used to identify visitors (used only on some browsers) (1 year)
onwbchtblocked : It is used to store if this visitor is blocked by an operator (6 months)
onwbchtSound : It is used to store sound On/Off preference of the visitor (if the visitor visit again this website or opens a new tab) (3 months)
onwbchtlastvisit : The last date visitor visited this website (3 months)
onwbchttimesVisited : How many times a visitor has visited this website (3 months)
inChatC : A flag indicating if this visitor is currently chatting. (4 hours)
hasTriggeredC : a flag indicating if a trigger has been shown (only when using triggers) (4 hours)

Also, the next cookies may be stored (for 1 day) if the visitors' browser doesn't support sessionStorage (iOS Safari):

sessionstorage.maxChat : a flag indicating if the visitor has maximized the chat window (so that it will be the same if he opens a new tab)
sessionstorage.chattext : the text of the chat, so that visitor can see the chat if he opens a website page on a new tab
sessionstorage.hideImage : a flag indicating if the visitor has hidden the image (on chat window)
sessionstorage.mustSendTriggerText : a flag indicating that the text of the trigger should be sent to the operator (for displaying the chat dialog)
sessionstorage.hasStartedWriting : a flag indicating if the visitor has started writing in the text area
sessionstorage.triggerText : the text of the trigger that has been shown to the visitor
sessionstorage.hasTriggered : a flag indicating if a trigger has been shown
sessionstorage.hasWrSeByTr : a flag indicating if the text "served by ..." has been written to the visitor chat
sessionstorage.secOnSite : how many seconds the visitor is on the website (only when used triggers for the whole website)

Are we GDPR compliant?

The new European General Data Protection Regulation (GDPR) introduces uniform data protection and privacy legislation for the European Union. It is approved by the European Parliament and Council and it will affect every organisation that processes European residents’ personally identifiable information. The regulation will be applicable in all European Member States will replace the existing Directive 95/46/EC and will put an end to the cumulative and simultaneous application of different national data protection laws.

Your data privacy and security is our top priority. We are working towards GDPR compliance, ours, yours and your clients’. We have approximately reached a 95% compliance to the GDPR striving to meet this challenging obligation, as it is the most important change in data privacy regulation over the last years.

New updates will follow until the GDPR becomes effective as of 25th May, 2018.

We use cookies to ensure that we give you the best experience on our website.